CVE-2019-14981
ImageMagick: division by zero in MeanShiftImage in MagickCore/feature.c
Severity Score
Exploit Likelihood
Affected Versions
11Public Exploits
0Exploited in Wild
-Decision
Descriptions
In ImageMagick 7.x before 7.0.8-41 and 6.x before 6.9.10-41, there is a divide-by-zero vulnerability in the MeanShiftImage function. It allows an attacker to cause a denial of service by sending a crafted file.
En ImageMagick versiones 7.x anteriores a 7.0.8-41 y versiones 6.x anteriores a 6.9.10-41, hay una vulnerabilidad de división por cero en la función MeanShiftImage. Permite a un atacante causar una denegación de servicio mediante el envío de un archivo especialmente diseñado.
ImageMagick is an image display and manipulation tool for the X Window System that can read and write multiple image formats. Issues addressed include buffer overflow, denial of service, double free, information leakage, null pointer, out of bounds read, out of bounds write, and use-after-free vulnerabilities.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2019-08-12 CVE Reserved
- 2019-08-12 CVE Published
- 2024-08-05 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-369: Divide By Zero
CAPEC
References (11)
| URL | Tag | Source |
|---|---|---|
| https://lists.debian.org/debian-lts-announce/2019/1... | Mailing List |
|
| https://lists.debian.org/debian-lts-announce/2020/0... | Mailing List |
|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://lists.opensuse.org/opensuse-security-announce/2019-... | 2020-08-19 | |
| http://lists.opensuse.org/opensuse-security-announce/2019-... | 2020-08-19 | |
| https://usn.ubuntu.com/4192-1 | 2020-08-19 | |
| https://www.debian.org/security/2020/dsa-4712 | 2020-08-19 | |
| https://access.redhat.com/security/cve/CVE-2019-14981 | 2020-03-31 | |
| https://bugzilla.redhat.com/show_bug.cgi?id=1757911 | 2020-03-31 |